Hi All I used the guide "Perfect Server 16.04 Ubuntu Apache" to create my server a couple of years ago. I added Let's Encrypt at the time too. It runs a mailserver "Iredmail", roundcube, NextCloud server. The server itself has been running flawlessly since, But I do want to harden the cipher suites and remove TLS 1.0 and TLS 1.1 as well. I have tried editing the following files: Apache2.conf ssl.conf security.conf And I have looked into the example.com.conf file as well. Everything I try to edit doesn't work and the same weak ciphers and the TLS 1.0 and TLS1.1 keep showing up on SSLLABS server test. Is there anywhere is that I can look? Regards
Upgading to 18.04 ubuntu gives newer tls. What is the version of openssl now? https://packages.ubuntu.com/xenial-updates/openssl
For me Ubuntu 16.04 works just fine and my score last time was always A+ both the server and the domains. There are a lot of blogs about how to score A+ and even 100% to most of the parts, but for sure, you cannot score 100% for all parts as that would render your page mostly inaccessible to general public.
